ezbounce Detection

info Nessus Plugin ID 34237

Synopsis

An IRC bouncer is running on this port.

Description

ezbounce, an IRC bouncer, is running on this port. It proxies communications between IRC clients and servers. This may be done to allow clients without direct network access to connect to servers or to hide client addresses.

Legimate use of such proxies is rare. They are often installed by attackers in order to avoid detection while controlling a 'botnet'.

Solution

Make sure that use of this software is in agreement with your organization's security policy.

See Also

http://www.linuxftw.com/ezbounce/

https://en.wikipedia.org/wiki/Bouncer_(networking)

Plugin Details

Severity: Info

ID: 34237

File Name: ezbounce_detect.nasl

Version: 1.10

Type: remote

Published: 9/17/2008

Updated: 4/11/2022

Configuration: Enable thorough checks

Asset Inventory: true

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:ezbounce:ezbounce